Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: n/8IauBHo6dGzXHaki43Tzif8jij7KlcTQcDHL+z5DU=
Subject key identifier: EB:DE:8A:E3:EA:A9:DA:E9:FF:BD:4F:61:39:DE:F8:EA:4C:10:C2:B8
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 019A0448794455BA3E74111954909E3A2B41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 10EE
Signing time: Tue 21 Oct 2025 01:00:49 +0000
Manifest this update: Tue 21 Oct 2025 01:00:49 +0000
Manifest next update: Wed 22 Oct 2025 01:00:49 +0000
Files and hashes: 1: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=)
2: F-tWEgFXNk85dgLML3v4CjJQNJI.roa (hash: KLZ5Ryps6kGcz+Vvj/Jt1Z7hc5rWBKew1n0+/36PDXM=)
3: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: DoNnLOi3qbZuwlh2v2uCoRDvtN8fihCiKCpuXVBbNIE=)
4: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=)
5: c_bN0qeZ98kLK_mj8jLJCUhCuDk.roa (hash: 6teRR+6kz/ZhchnuaFTgHT4htaDxgUNTDG0QN1bVrBA=)
6: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=)
7: fnn2PBqaEkB-G35nmktclyOEVrM.roa (hash: z4jXqUIY33n8wsiIhXSfBMidI9YSQa2N+6IYP0IxcVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 22:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:04:48:79:44:55:ba:3e:74:11:19:54:90:9e:3a:2b:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Oct 21 01:00:49 2025 GMT
Not After : Oct 22 01:00:49 2025 GMT
Subject: CN=ebde8ae3eaa9dae9ffbd4f6139def8ea4c10c2b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:88:86:21:2a:8e:ce:da:db:41:c2:8f:10:c4:
1c:9b:bf:df:3e:19:7d:39:76:ed:bc:8d:e7:92:a5:
56:72:48:27:e6:31:5e:74:4a:e0:7c:e4:eb:50:0f:
4f:fe:97:1d:48:02:19:46:01:51:48:b3:d7:5f:20:
65:88:3b:b8:3e:68:f6:2d:63:11:9a:a2:6c:e1:f1:
c3:ea:0b:be:6c:b1:96:b5:3e:8f:e1:8b:06:84:f2:
88:86:03:b5:4c:d1:14:c0:6f:b6:e4:26:7f:97:63:
75:ff:44:90:72:b1:6f:97:84:0b:23:05:2a:82:b9:
83:ca:29:ef:ad:bd:e8:93:a6:40:81:67:a1:b0:8c:
37:ac:00:6d:e5:d6:a7:d4:2c:2c:dc:dd:69:b4:ce:
61:b0:c8:7d:93:4b:37:92:2d:e4:75:6b:d9:00:86:
66:bb:75:00:7a:73:ec:1e:82:ae:a3:e5:02:10:15:
db:46:44:5b:8d:01:4e:fe:c2:45:80:ec:13:40:76:
fd:c1:9e:8d:bd:09:3b:15:93:5c:9e:6b:cf:95:86:
3c:8b:2b:b1:d5:71:70:e6:e8:d0:2c:eb:bf:a1:66:
2d:0a:ad:62:b4:3f:87:1b:62:f4:7a:2f:80:fe:a8:
c8:45:92:5a:77:a4:45:0b:99:45:17:f1:b1:c3:57:
49:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:DE:8A:E3:EA:A9:DA:E9:FF:BD:4F:61:39:DE:F8:EA:4C:10:C2:B8
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:b2:3d:28:f1:81:f9:e1:e4:fe:dc:cf:b4:3a:f3:d8:31:70:
96:60:3b:57:f0:82:37:c8:6d:d7:98:99:c9:07:0d:5e:03:86:
1e:fe:54:13:bc:96:33:ca:bb:db:3c:f1:29:a0:c7:09:07:f9:
03:c1:ea:df:97:f3:ba:2b:6d:af:bf:ed:7b:13:d7:cc:07:3b:
0f:0e:eb:04:2a:61:31:f1:a3:c4:44:7f:3a:18:49:e1:08:64:
ad:be:6d:01:12:e6:c4:6f:92:77:42:e5:6d:8d:46:54:ea:37:
11:d3:bc:98:ca:e2:12:46:ae:c4:26:49:14:0f:11:67:65:de:
70:53:f8:34:17:e2:b8:82:c3:f6:65:41:69:88:9e:7b:92:ee:
0f:f6:10:4a:ec:09:af:f4:6c:4e:d9:10:08:b8:d4:42:6e:28:
17:1c:a1:c1:ea:97:8d:c2:d4:97:f7:de:8b:ca:21:8a:73:eb:
60:25:d5:49:de:1b:0d:7d:3f:89:c1:02:b1:08:f8:4b:09:3a:
45:29:dc:ae:5b:a5:0f:b4:31:41:a3:37:e7:ed:1c:4d:5f:c6:
4c:3f:1b:ff:2e:ee:0c:2d:83:3a:88:99:33:97:85:69:93:87:
09:04:de:66:e0:32:62:77:80:ec:e0:12:02:8c:ec:a4:9c:b5:
bb:57:77:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 04:19:56 2025 by rpki-client